Hak5 Graffiti Wall, Lets make the code even better Options

[Darren Kitchen]

Hey guys, this is the code I whipped together to make the Hak5 Graffiti wall. Toss in a projector and a webcam and it's fun for the whole Internet. Now lets make it even better!

Write.php

CODE

<?php
if (isset($_POST['name']) && !empty($_POST['name'])) {
$nam = stripslashes($_POST['name']);
$msg = stripslashes($_POST["message"]);
$nam = htmlspecialchars($nam, ENT_QUOTES);
$msg = htmlspecialchars($msg, ENT_QUOTES);
$content = $nam . ": " . $msg;

//filtering
$blocked = array("fuck", "shit");
$replacewith = array("frak", "shazbot");
$content = str_replace($blocked, $replacewith, $content);

//write to file to display on wall
$filed = @fopen("data.txt", "w");
@fwrite($filed, "$content");
fclose($filed);

//write to log
$filed = @fopen("data.log", "a+");
@fwrite($filed, "$REMOTE_ADDR $content\n");
fclose($filed);

echo "<b>Message Posted $REMOTE_ADDR</b><br /><br />";
}
?>

<center>
<form name="Graffiti Wall" action="<?php echo $_SERVER['PHP_SELF']; ?>" method="post" enctype="application/x-www-form-urlencoded">
Name: <br />
<input type="text" name="name" size="14"><br><br>

Message: <br />
<textarea rows="3" cols="15" name="message"></textarea> <br /><br />

<input type="submit" value="Write on the Hak5 Wall" name="submit">
</form></center>

show.php

CODE

<?php
$filename = "data.txt";
$whattoread = @fopen($filename, "r");
$file_cnt = fread($whattoread, filesize($filename));
$msg = "$file_cnt";
fclose($whattoread);
?>
<html>
<head>
<meta http-equiv="refresh" content="7">
</head>
<body bgcolor="#000000" text="#ffffff">
<div style="font-size:1000%; font-family:courier new; font-weight:bold;">
<?php echo $msg; ?>
</div>
</body>
</html>

Suggestions?

[RogueHart]

i already suggested a username and account thing. but that would take a long time and you could use something sooner.

so (if this thing is a more perm setup) then why not setup a password system. where you apply via the forums for a password. the you can use the password for each post on the wall. log each post by the password instead of just the name and you could find and ban people from the program by deleting their passwords from the php.

though that might take longer depending on how it would be setup. i dont know for sure since i dont know php (its next on my list after c++)

of course something like that would be a precursor to a login system. or if you could link the forums logins to the wall it might make things easier. but idk if thats even possible.


just throwing in my suggestions. hopefully i sparked a few light bulbs.



edit

and maybe if you can try a code to automatically reduce font based on the size of the message.

[Pizza]

i have error with
"<?php echo $_SERVER['PHP_SELF']; ?>"

[Tenzer]

I would suggest that you base this on a database instead (eg. sqlite), and then check that every post is displayed on the wall, because with the current script, two people could post something almost at the same time, and then one of the posts won't be displayed.
But maybe that is wanted, with the benefit of having some updated posts that could comment what was happening on the set, instead of having a 10 minute queue for getting a post shown.

If you want this I could try to put something together...

Edit: Oh btw, it would also be easy to add a validation system to the above solution, so a person has to approve each post before they get into the queue, in order to limit spam and ads.

Edit 2: I just saw the 3x11 episode, and if you want people to post ascii art on the wall, you probably need to enclose the text in <pre> tags, or at least make newlines (\n) into HTML newlines (<br />).

[iisonly]

tried to something similar

It would display inserted text for 10 seconds and then next and next until all are displayed.


Source : http://iisonly.planet.ee/wall/?source or http://iisonly.planet.ee/wall/wall.zip

[crazyren]

lil' update...to write.php

* Smileys
* BBCode

CODE

//text to smileys =)
$content = str_replace(":(","<img src=\"smileys/sad.gif\" alt=\":(\"/>", $content);
$content = str_replace(":(","<img src=\"smileys/sad.gif\" alt=\":(\"/>", $content);
$content = str_replace(";(","<img src=\"smileys/cry.gif\" alt=\";(\"/>", $content);
$content = str_replace(":@","<img src=\"smileys/mad.gif\" alt=\":@\"/>", $content);
$content = ereg_replace(":)","<img src=\"smileys/smile.gif\" alt=\":)\"/>", $content);
$content = ereg_replace("=)","<img src=\"smileys/smile.gif\" alt=\"=)\"/>", $content);
$content = ereg_replace(":D","<img src=\"smileys/laugh.gif\" alt=\":D\"/>", $content);
$content = ereg_replace(":d","<img src=\"smileys/laugh.gif\" alt=\":d\"/>", $content);
$content = ereg_replace(":p","<img src=\"smileys/tongue.gif\" alt=\":p\"/>", $content);
$content = ereg_replace(":P","<img src=\"smileys/tongue.gif\" alt=\":P\"/>", $content);
$content = ereg_replace(":O","<img src=\"smileys/shocked.gif\" alt=\":O\"/>", $content);
$content = ereg_replace(":o","<img src=\"smileys/shocked.gif\" alt=\":o\"/>", $content);
$content = ereg_replace(";)","<img src=\"smileys/wink.gif\" alt=\";)\"/>", $content);
$content = ereg_replace(":S","<img src=\"smileys/sick.gif\" alt=\":S\"/>", $content);
$content = ereg_replace(":s","<img src=\"smileys/sick.gif\" alt=\":s\"/>", $content);
$content = ereg_replace(":roll:","<img src=\"smileys/roll.gif\" alt=\":roll:\"/>", $content);

//bbcode
$content = str_replace("[B]", "<strong>", $content);
$content = str_replace("[/B]", "</strong>", $content);
$content = str_replace("[I]", "<em>", $content);
$content = str_replace("[/I]", "</em>", $content);
$content = str_replace("[U]", "<u>", $content);
$content = str_replace("[/U]", "</u>", $content);
$content = str_replace("[LI]", "<li>", $content);
$content = str_replace("[/LI]", "</li>", $content);

[RogueHart]

I would suggest that you base this on a database instead (eg. sqlite), and then check that every post is displayed on the wall, because with the current script, two people could post something almost at the same time, and then one of the posts won't be displayed.
But maybe that is wanted, with the benefit of having some updated posts that could comment what was happening on the set, instead of having a 10 minute queue for getting a post shown.

If you want this I could try to put something together...

Edit: Oh btw, it would also be easy to add a validation system to the above solution, so a person has to approve each post before they get into the queue, in order to limit spam and ads.

Edit 2: I just saw the 3x11 episode, and if you want people to post ascii art on the wall, you probably need to enclose the text in <pre> tags, or at least make newlines (\n) into HTML newlines (<br />).

i dont think setting up a que would be a good idea. im on here with aroujnd 40 osmething people and it takes no more than 2 tries to get my message shown. usually i only have to post once

[Rab]

Darren you may steal a copy of my accessible Ajax/PHP chat if you want.
http://mike-whitehurst.co.uk/stuff/permanent/

[Strife25]

It would be cool to integrate this hack with the Emergency Party button: http://www.plasma2002.com/epb/

[RogueHart]

i would love to see what someone breaking into your house would do if suddenly the wall said

"i'm watching you put down the damn tv"



ummmm think you could link the wall to maybe an irc log?

at any rate this would be great for the live show.



here. found a problem with the bbcode you had setup. heres a fix

CODE

$content = str_replace("[b]", "<strong>", $content);
$content = str_replace("[/b]", "</strong>", $content);
$content = str_replace("[i]", "<em>", $content);
$content = str_replace("[/i]", "</em>", $content);
$content = str_replace("[u]", "<u>", $content);
$content = str_replace("[/u]", "</u>", $content);
$content = str_replace("[li]", "<li>", $content);
$content = str_replace("[/li]", "</li>", $content);

it wasn't taking lower case letters. i dont know php but i have enough reasoning skills to alter some code

[Fruitpastles]

You could use str_ireplace(). It's the same but case in-sensitive, only available in PHP5 though.

i would love to see what someone breaking into your house would do if suddenly the wall said

"i'm watching you put down the damn tv"

LOL! I almlost want it to happen now .

[darthneo]

Might i suggest this for the name input tag in write.php:

CODE

<input type="text" name="name" size="14" value="<?php echo $nam; ?>">

that way it 'saves' your name after you 'write on the hak5 wall', you might be able to do it this way "<?=$nam?>" but it doesn't work on my webserver...

edit-
you should probably add some more words to the "blocked" list....

[RogueHart]

the "please wait" thing when your the last person to post could be timed. which would make it easier to mess with when there aren't many people typing



for those that want to mess with it heres a bit of fun info
20 periods will make a new line. although because of the lack of a word wrap on single words you could type 300 unspaced periods and it would only do 1 line.

then 2 periods to reach the window.

dont forget to account for your name.

ill keep messing with it and maybe we can have some cool stuff.


for me(because i only accounted for my name) this will print the text over the window. although 1 letter on last line is off of it. and one more line will be off of it.

CODE

.........
.....................
..check......................
..the........................
..forums...............................
..4details.................

this will print on the window without overlap

CODE

.........
........................
..iR......................
..window.................
..iR.......................
..ruler!................

[acer5050]

Great ideas guys!

I love this thing...

[RogueHart]

edit.
nvm. fixed

[Fruitpastles]

Here's a few functions I threw together that might improve it a little.

CODE

<?php

//LENGTHANDWRAP - cuts length, wraps and builds content
function LengthAndWrap( $name, $message )
{
    //SETTINGS
    define("MESSAGE_MAX_LENGTH", 150);
    define("MAX_WRAP_LENGTH", 18);
    
    //BUILD STRING
    $string = $name . ": " . $message;
    
    //TRIM LENGTH
    $string = substr( $string, 0, MESSAGE_MAX_LENGTH );
    
    //WRAP
    $string = wordwrap($string, MAX_WRAP_LENGTH, "<br />", true);
    
    //RETURN
    return $string;
}



//CENSOR INPUT - removes bad parts of string
function CensorInput( $input )
{
    //======================================================//
    // Reads text file in the format: FIND:REPLACEWITH;
    // Example:
    // fuck:sunshinedust;
    // dick:willy;
    // pussy:lady area;
    // balls:face;
    //======================================================//
    
    
    //SETTINGS
    define("WORD_FILE", "words.txt"); //bad word file
    
    //GET LIST OF WORDS
    $handle = fopen( WORD_FILE, "r" );
    $string = fread($handle, filesize( WORD_FILE ));
    fclose($handle);

    //REMOVE WHIE SPACE
    $string = str_replace("\r\n", "", $string);//remove CRLF
    $string = trim( $string ); //trim other whitespace
    
    //PREP FOR LOOP
    $total = substr_count( $string, "="); //count number of word replacements
    $curr = 0;
    $end = 0;
    
    //PARSE CENSOR FILE
    while ($curr != $total)//while the current divider is not the same as the total dividers
    {
    
        //GRAB WORD TO REPLACE
        $start = ($end!=0?$end+1:0); //set to 0 if its the start of the file else +1
        $end = strpos($string, "=", $start);
        $bad = substr( $string, $start, $end-$start );
    
        //GRAB REPLACEMENT
        $start = $end + 1;
        $end = strpos($string, ";", $start);
        $good = substr( $string, $start, $end-$start);
    
        //UPDATE ARRAYS
        $replacements[] = $good;
        $WordsOfTheDevil[] = $bad;
    
        //MOVE ALONG STRING
        $curr++;
    }
    
    //CENSOR
    $input = str_ireplace( $WordsOfTheDevil, $replacements, $input ); //replace, with, in

    return $input;
}
?>

[natural_orange]

I Think it would be better if it just showed the last 2-5 lines from like #wall in mintirc.net

Im sure the php-irc framework could handle it, and there are a few people in the community that are pretty good with that (cough the_php_jedi cough). Though some AJAX would probably be better...

[Darren Kitchen]

Hey guys thanks for all the feedback. I'm wanting to add more features faster than I can keep up. I'd really like to add your code into the mix as well as toss in some fun stuff like maybe simple multiplayer games but I'm leaving for Toronto tonight and won't return until Monday. I'll check in to make sure everything is running smoothly periodically.

I want to first bring attention to the awesome Adobe Air Setcam app, it totally rocks my socks. http://hak5.org/forums/index.php?showtopic=9526

Also, thanks to SomeoneE1se the code has been much improved so I'm pasting the latest version here. Feel free to run your own local copy to test features. I built this initially using recycled code from a project I used to run called "6" with WAMP, which I like a lot better than XAMPP on Win.

At first I wanted the wall to support spaces and linebreaks which would make ASCII art easier but at the same time I want it to be friendly to newcomers who are probably expecting it to wordwrap.

Anyway, the code:

Write.php

CODE

<?php
if (isset($_POST['name']) && !empty($_POST['name'])) {

$imploder = 'sdf93jdfe873ifjaj489fb397fgdkw38372brlksuc8934uf8ws6gfk34hv7wbt394ap';
$blocked = array(
"fuck",
"Fuck",
"FUCK",
"shit",
"Shit",
"SHIT",
"cunt",
"Cunt",
"CUNT",
"gonna give you up"
);

$replacewith = array(
"frak",
"frak",
"frak",
"shazbot",
"shazbot",
"shazbot",
"cookie",
"cookie",
"cookie",
"gonna rickroll the hakwall. That would be lame."
);

$name = str_replace($blocked, $replacewith, stripslashes(htmlentities($_POST['name'])));
$msg = str_replace($blocked, $replacewith, stripslashes(htmlentities($_POST['message'])));

$check = file_get_contents('ip.ip');

//Check ban list
if ($_SERVER['REMOTE_ADDR'] == "REMOVED FOR OBVIOUS REASONS" || $_SERVER['REMOTE_ADDR'] == "REMOVED FOR OBVIOUS REASONS" || $_SERVER['REMOTE_ADDR'] == "REMOVED FOR OBVIOUS REASONS" || $_SERVER['REMOTE_ADDR'] == "REMOVED FOR OBVIOUS REASONS" || $_SERVER['REMOTE_ADDR'] == "REMOVED FOR OBVIOUS REASONS" || $_SERVER['REMOTE_ADDR'] == "REMOVED FOR OBVIOUS REASONS") {
die('You have been banned for being lame. Come back when you grow up.'); }

//Check spam user
if($check && $check != $_SERVER['REMOTE_ADDR']){

//text to smileys =)
$msg = str_replace(":(","<img src=\"smileys/sad.gif\" width=\"120\" height=\"120\" alt=\":(\"/>", $msg);
$msg = str_replace(":(","<img src=\"smileys/sad.gif\" width=\"120\" height=\"120\" alt=\":(\"/>", $msg);
$msg = str_replace(";(","<img src=\"smileys/cry.gif\" width=\"120\" height=\"120\" alt=\";(\"/>", $msg);
$msg = str_replace(":@","<img src=\"smileys/mad.gif\" width=\"120\" height=\"120\" alt=\":@\"/>", $msg);
$msg = ereg_replace(":)","<img src=\"smileys/smile.gif\" width=\"120\" height=\"120\" alt=\":)\"/>", $msg);
$msg = ereg_replace("=)","<img src=\"smileys/smile.gif\" width=\"120\" height=\"120\" alt=\"=)\"/>", $msg);
$msg = ereg_replace(":D","<img src=\"smileys/laugh.gif\" width=\"120\" height=\"120\" alt=\":D\"/>", $msg);
$msg = ereg_replace(":d","<img src=\"smileys/laugh.gif\" width=\"120\" height=\"120\" alt=\":d\"/>", $msg);
$msg = ereg_replace(":p","<img src=\"smileys/tongue.gif\" width=\"120\" height=\"120\" alt=\":p\"/>", $msg);
$msg = ereg_replace(":P","<img src=\"smileys/tongue.gif\" width=\"120\" height=\"120\" alt=\":P\"/>", $msg);
$msg = ereg_replace(":O","<img src=\"smileys/shocked.gif\" width=\"120\" height=\"120\" alt=\":O\"/>", $msg);
$msg = ereg_replace(":o","<img src=\"smileys/shocked.gif\" width=\"120\" height=\"120\" alt=\":o\"/>", $msg);
$msg = ereg_replace(";)","<img src=\"smileys/wink.gif\" width=\"120\" height=\"120\" alt=\";)\"/>", $msg);
$msg = ereg_replace(":S","<img src=\"smileys/sick.gif\" width=\"120\" height=\"120\" alt=\":S\"/>", $msg);
$msg = ereg_replace(":s","<img src=\"smileys/sick.gif\" width=\"120\" height=\"120\" alt=\":s\"/>", $msg);
$msg = ereg_replace(":roll:","<img src=\"smileys/roll.gif\" width=\"120\" height=\"120\" alt=\":roll:\"/>", $msg);

//BB Code
$msg = str_replace("", "<strong>", $msg);
$msg = str_replace("", "</strong>", $msg);
$msg = str_replace("", "<em>", $msg);
$msg = str_replace("", "</em>", $msg);
$msg = str_replace("", "<u>", $msg);
$msg = str_replace("", "</u>", $msg);
$msg = str_replace("[LI]", "<li>", $msg);
$msg = str_replace("[/LI]", "</li>", $msg);

$msg = str_replace("", "<strong>", $msg );
$msg = str_replace("", "</strong>", $msg );
$msg = str_replace("", "<em>", $msg );
$msg = str_replace("", "</em>", $msg );
$msg = str_replace("", "<u>", $msg );
$msg = str_replace("", "</u>", $msg );
$msg = str_replace("[li]", "<li>", $msg );
$msg = str_replace("[/li]", "</li>", $msg );



$file = @fopen("UNIQUE TEXT FILE.TXT", "w") or die('Write Error!');
@fwrite($file, $_SERVER['REMOTE_ADDR'].$imploder.$name.$imploder.$msg);
fclose($file);

$fileIP = @fopen("ip.ip", "w") or die('Write Error!!');
@fwrite($fileIP, $_SERVER['REMOTE_ADDR']);
fclose($fileIP);

$filed = @fopen("UNIQUE LOG FILE.LOG", "a+") or die('Write Error!!!');
@fwrite($filed, $_SERVER['REMOTE_ADDR'] . ' ' . $name . ' ' . $msg . "\n");
fclose($filed);

echo "<b>Message Posted ". $_SERVER['REMOTE_ADDR'] . "</b><br /><br />";

} else {
echo "<b>Please Wait!</b><br /><br />";
}
}
?>
<center>
<form name="Graffiti Wall" action="<?php echo $_SERVER['PHP_SELF']; ?>" method="post" enctype="application/x-www-form-urlencoded">
Name: <br />
<input type="text" name="name" size="14"><br><br>

Message: <br />
<textarea rows="3" cols="15" name="message"></textarea> <br /><br />

<input type="submit" value="Write on the Hak5 Wall" name="submit">
</form></center>

show.php

CODE

<html>
<head>
<meta http-equiv="refresh" content="4">
</head>
<body bgcolor="#000000" text="#ffffff">
<div style="font-size:700%; font-family:courier new; font-weight:bold;"><?php
$file = file_get_contents('UNIQUE TEXT FILE');
if($file){
$data = explode('sdf93jdfe873ifjaj489fb397fgdkw38372brlksuc8934uf8ws6gfk34hv7wbt394ap', $file, 3);
if($_SESSION['ip'] != $data[0]){
echo $data[1] . ": \n" . $data[2];
$_SESSION['ip'] = $data[0];
$_SESSION['name'] = $data[1];
$_SESSION['msg'] = $data[2];
} else {
echo $_SESSION['name'] . ': \n' . $_SESSION['msg'];
}
} else {
die('File Access Error!');
}
?></div>
</body>
</html>

I've replaced sensitive data in the code above. Kinda forgot to last time and, well, some of you found the log file

Okies I'll check in when I can over the weekend. Have fun guys and I'll post pics from PurePwnage in Toronto when I get back. Cheers!

PS: links on the setcam page to this thread, the adobe air app, and the privacy policy were added.

[Tenzer]

I'd really like to add your code into the mix as well as toss in some fun stuff like maybe simple multiplayer games but I'm leaving for Toronto tonight and won't return until Monday.

A hangman game would be cool

[digip]

Is there going to be an offline archive of the wall? Not video, but just the text saved somewhere to go back and read funny comments from, etc.